Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Attach vulnerability information to image metadata #76

Open
tazjin opened this issue Nov 4, 2019 · 1 comment
Open

Attach vulnerability information to image metadata #76

tazjin opened this issue Nov 4, 2019 · 1 comment
Labels
enhancement New feature or request

Comments

@tazjin
Copy link
Owner

tazjin commented Nov 4, 2019

Idea from talking to colleagues: Using a dataset like broken.sh by @andir it would be interesting to attach metadata to Nixery image layers about potential known vulnerabilities in those layers.

Since each layer is a set of packages, this translates rather nicely.

Specifically I'm thinking to use the history field to add package information to the "Created by" field and extra information such as vulnerabilities to the "Comment".
@tazjin tazjin added the enhancement New feature or request label Nov 4, 2019
@malte-behrendt
Copy link

I'm looking for a vulnerability scanner which is able to scan nixery/nixos images.
Ideally showing results in Harbor right away.

Is anyone aware of a scanner which works with nixery images and/or how to configure such a scanner?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@tazjin @malte-behrendt